[Git][security-tracker-team/security-tracker][master] add clients vulnerable to s/mime efail according to paper

Yves-Alexis Perez corsac at debian.org
Mon May 14 13:44:50 BST 2018


Yves-Alexis Perez pushed to branch master at Debian Security Tracker / security-tracker


Commits:
41a5ba9c by Yves-Alexis Perez at 2018-05-14T14:44:21+02:00
add clients vulnerable to s/mime efail according to paper

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -23493,9 +23493,11 @@ CVE-2017-17690
 	RESERVED
 CVE-2017-17689 [S/MIME CBC gadget attacks]
 	RESERVED
-	NOTE: vulnerability is in the clients handling, not in OpenPGP
 	NOTE: https://efail.de
 	TODO: check all clients
+	- thunderbird <unfixed>
+	- evolution <unfixed>
+	- kmail <unfixed>
 CVE-2017-17688 [OpenPGP CFB gadget attacks]
 	RESERVED
 	- enigmail <unfixed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/41a5ba9ceacc2f5e1762cacb082e8a48128a80e9

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/41a5ba9ceacc2f5e1762cacb082e8a48128a80e9
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180514/15add096/attachment.html>


More information about the debian-security-tracker-commits mailing list